Research
Security News
Quasar RAT Disguised as an npm Package for Detecting Vulnerabilities in Ethereum Smart Contracts
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
@next/eslint-plugin-next
Advanced tools
The @next/eslint-plugin-next package provides a set of ESLint rules specifically tailored for Next.js applications. It helps developers follow best practices and avoid common pitfalls when building applications with Next.js.
Page-level configuration enforcement
This feature enforces that page navigation within a Next.js application is done using the Link component from Next.js instead of raw HTML anchor tags. This ensures client-side navigation is properly handled.
module.exports = {
extends: ['plugin:@next/next/recommended'],
rules: {
'@next/next/no-html-link-for-pages': 'error'
}
};
No sync scripts
This rule prevents the use of synchronous scripts in Next.js pages, which can lead to performance issues. It encourages the use of Next.js's built-in script optimization features.
module.exports = {
extends: ['plugin:@next/next/recommended'],
rules: {
'@next/next/no-sync-scripts': 'error'
}
};
No CSS tags
This rule ensures that CSS is imported using Next.js's built-in CSS support rather than through raw <link> tags in the document head, which can lead to unoptimized loading of styles.
module.exports = {
extends: ['plugin:@next/next/recommended'],
rules: {
'@next/next/no-css-tags': 'error'
}
};
This package includes ESLint rules for React applications. It helps with best practices and catching common mistakes in React code. While it is not specific to Next.js, it is often used alongside Next.js projects for general React code quality.
This plugin focuses on enforcing accessibility best practices in JSX elements. It is complementary to @next/eslint-plugin-next, which does not specifically target accessibility concerns.
This is a widely-used ESLint configuration that enforces a set of coding standards and best practices for JavaScript and React. It is more general-purpose compared to @next/eslint-plugin-next, which is tailored for Next.js applications.
FAQs
ESLint plugin for Next.js.
The npm package @next/eslint-plugin-next receives a total of 4,949,831 weekly downloads. As such, @next/eslint-plugin-next popularity was classified as popular.
We found that @next/eslint-plugin-next demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 5 open source maintainers collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers uncover a malicious npm package posing as a tool for detecting vulnerabilities in Etherium smart contracts.
Security News
Research
A supply chain attack on Rspack's npm packages injected cryptomining malware, potentially impacting thousands of developers.
Research
Security News
Socket researchers discovered a malware campaign on npm delivering the Skuld infostealer via typosquatted packages, exposing sensitive data.